Search Results (351250 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-1999-0505 1 Microsoft 2 Windows 2000, Windows Nt 2026-04-16 N/A
A Windows NT domain user or administrator account has a guessable password.
CVE-1999-0029 1 Sgi 1 Irix 2026-04-16 8.4 High
root privileges via buffer overflow in ordist command on SGI IRIX systems.
CVE-1999-0589 2026-04-16 N/A
A system-critical Windows NT registry key has inappropriate permissions.
CVE-1999-0577 1 Microsoft 1 Windows Nt 2026-04-16 N/A
A Windows NT system's file audit policy does not log an event success or failure for non-critical files or directories.
CVE-1999-0611 2026-04-16 N/A
A system-critical Windows NT registry key has an inappropriate value.
CVE-1999-0600 2026-04-16 N/A
A network intrusion detection system (IDS) does not verify the checksum on a packet.
CVE-1999-0942 1 Sco 1 Unixware 2026-04-16 N/A
UnixWare dos7utils allows a local user to gain root privileges by using the STATICMERGE environmental variable to find a script which it executes.
CVE-1999-0953 1 Matt Wright 1 Wwwboard 2026-04-16 N/A
WWWBoard stores encrypted passwords in a password file that is under the web root and thus accessible by remote attackers.
CVE-1999-0964 1 Freebsd 1 Freebsd 2026-04-16 N/A
Buffer overflow in FreeBSD setlocale in the libc module allows attackers to execute arbitrary code via a long PATH_LOCALE environment variable.
CVE-1999-0985 1 Cc 1 Cc Whois 2026-04-16 N/A
CC Whois program whois.cgi allows remote attackers to execute commands via shell metacharacters in the domain entry.
CVE-1999-1177 1 Lincoln D. Stein 1 Nph-publish 2026-04-16 N/A
Directory traversal vulnerability in nph-publish before 1.2 allows remote attackers to overwrite arbitrary files via a .. (dot dot) in the pathname for an upload operation.
CVE-1999-1147 1 Platinum 1 Policy Compliance Manager 2026-04-16 N/A
Buffer overflow in Platinum Policy Compliance Manager (PCM) 7.0 allows remote attackers to execute arbitrary commands via a long string to the Agent port (1827), which is handled by smaxagent.exe.
CVE-1999-1167 1 Third Voice 1 Third Voice Web 2026-04-16 N/A
Cross-site scripting vulnerability in Third Voice Web annotation utility allows remote users to read sensitive data and generate fake web pages for other Third Voice users by injecting malicious Javascript into an annotation.
CVE-1999-1227 1 Ethereal Group 1 Ethereal 2026-04-16 N/A
Ethereal allows local users to overwrite arbitrary files via a symlink attack on the packet capture file.
CVE-1999-1276 2 Debian, Linux 2 Debian Linux, Linux Kernel 2026-04-16 N/A
fte-console in the fte package before 0.46b-4.1 does not drop root privileges, which allows local users to gain root access via the virtual console device.
CVE-1999-1287 1 Stephen Turner 1 Analog 2026-04-16 N/A
Vulnerability in Analog 3.0 and earlier allows remote attackers to read arbitrary files via the forms interface.
CVE-1999-1263 1 Metamail Corporation 1 Metamail 2026-04-16 N/A
Metamail before 2.7-7.2 allows remote attackers to overwrite arbitrary files via an e-mail message containing a uuencoded attachment that specifies the full pathname for the file to be modified, which is processed by uuencode in Metamail scripts such as sun-audio-file.
CVE-1999-1256 1 Oracle 1 Database Assistant 2026-04-16 N/A
Oracle Database Assistant 1.0 in Oracle 8.0.3 Enterprise Edition stores the database master password in plaintext in the spoolmain.log file when a new database is created, which allows local users to obtain the password from that file.
CVE-1999-1270 1 Kde 1 Kde 2026-04-16 N/A
KMail in KDE 1.0 provides a PGP passphrase as a command line argument to other programs, which could allow local users to obtain the passphrase and compromise the PGP keys of other users by viewing the arguments via programs that list process information, such as ps.
CVE-2006-0702 1 Imagevue 1 Imagevue 2026-04-16 N/A
admin/upload.php in imageVue 16.1 allows remote attackers to upload arbitrary files to certain allowed folders via .. (dot dot) sequences in the path parameter. NOTE: due to the lack of details, the specific vulnerability type cannot be determined, although it might be due to directory traversal.